Business Impact Analysis

Business Impact Analysis

The heart of any major business, beyond its human capital, is usually its technological resources and status. A business that relies on internet access and an arsenal of computer hardware and software must collect and harness the necessary knowledge, people and tools to manage this technology in an efficient yet effective way. Doing otherwise can expose trade secrets and customer data. Loss of productivity can also be exceedingly damaging.

Mission Critical Functions

As it relates to technology, there are three major functions that are mission critical. The first, and most important, is the network itself. If the network goes down, any networking and Internet functions will grind to a halt. Having such a happenstance drag on for a considerable amount of time can cause massive amounts of damage in terms of client deliverables not being provided and necessary administration work not getting done. It is true that not all tasks must be done right away but if something important is due today and the network is down and the completion of the assignment or task is internet-dependent, downtime can kill. In some cases, there are legal implications. If the network goes down on the day a tax filing is due and the business files online, this can lead to the business running afoul of the law.

The second mission critical networking function is part of the overall network but is separate managed. Also, if this function goes down, it does not necessarily mean the network is done, although it could. This function is email capabilities. Phone conversations and faxes can cover many tasks but being able to send documents or other secure correspondence quickly often requires email. If a Microsoft Exchange server crashes, it severely compromises the ability of employees to get work done and this has potential legal and financial implications.

The third mission critical function to mention is data storage. Since loss of data stored on hard drives can cause immeasurable damaged, there needs to be a significant amount of redundancy. If at all possible, data backups of all vital information need to be not only backed up, but backed up at an off-site location in case of a power outage, fire or flood (Walzer, 2009). Ensuring data access one hundred percent of the time is not always possible but that should always be the ultimate goal.

Function Interdependency

The items listed above are technically separate functions but they are very strongly inter-related and inter-reliant. For example, if the network goes down, network hard drives will still be intact but people will be unable to access them. If the network drive goes down, the network will be unable to access it and people will not be able to use the network to email documents and other files to clients and colleagues.

All of the systems noted above can be affected by hacking and DDoS attacks. The firm's network security person needs to be exceedingly good at his/her job and needs to be given all necessary but possible resources to do the job right. Doing whatever is necessary to reduce employee turnover in the information technology and network security section of a business helps preserve continuity and helps to prevent mishandling of necessary IT tasks ("Give IT tasks," 2009). Hackers have stepped up attacks against vital services and programs such as those of the United States national infrastructure (Schmidt, 2012).